CVE-2019-5478
N/A
N/A
Summary
A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an adversary being able to modify the control fields of the boot image leading to an incorrect secure boot behavior.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Zynq UltraScale+ SoC | Not Fixed | affected |
Weaknesses
- CWE-657: Violation of Secure Design Principles (CWE-657)
ADP Enrichment
CVE Program Container
Additional References
- https://www.xilinx.com/support/answers/72588.html
- https://github.com/inversepath/advisories/blob/master/Security_Advisory-Ref_FSC-HWSEC-VR2019-0001-Xilinx_ZU+-Encrypt_Only_Secure_Boot_bypass.txt
References
- https://www.xilinx.com/support/answers/72588.html
- https://github.com/inversepath/advisories/blob/master/Security_Advisory-Ref_FSC-HWSEC-VR2019-0001-Xilinx_ZU+-Encrypt_Only_Secure_Boot_bypass.txt
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.